CVE-2026-44924

🔶 medium

🔍 Scan for this CVE

InfoScale VIOM 9.1.3 allows XSS.

CVSS Score

5.4

Medium

EPSS Score

0.0

Exploit Probability

Published Date

2026-05-20

First Seen: 2026-05-21

This CVE is Lower Risk - more severe than 22.8% of all 328,009 vulnerabilities in our database.

#253,218

Below average severity

Severity Percentile

🔍 Exploitation Status

None

No known exploits

⚙️ Automatable

Requires human interaction

💥 Technical Impact

Partial

Limited system impact

SSVC data provided by CISA

Last Modified 2026-05-21

Source NVD 🔗

CVSS Vector 3.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE IDs (Weakness Types)

CWE-79

📦 Affected Products 1

Vendor	Product	Status	Affected Versions
veritas	infoscale_operations_manager	Affected	< 9.1.3

Vendor Advisory

Vendor Advisory

CVE ID	Severity	CVSS	EPSS	Summary	Published
CVE-2026-44923	🔶 medium	6.5	0.0	SQL injection in InfoScale VIOM before v9.1.3 allows remote attackers to escalate privileges.	2026-05-20
CVE-2026-44925	⚠️ high	8.8	0.0	Cross-Site Request Forgery (CSRF) vulnerability in InfoScale v.9.1.3 Operations Manager (VIOM) allows an attacker to for...	2026-05-20
CVE-2023-38404	⚠️ high	7.2	0.1	The XPRTLD web application in Veritas InfoScale Operations Manager (VIOM) before 8.0.0.410 allows an authenticated attac...	2023-07-17
CVE-2023-32568	⚠️ high	7.2	0.3	An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2.800 and 8.x before 8.0.410. The VIOM...	2023-05-10
CVE-2023-32569	⚠️ high	7.2	0.3	An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2.800 and 8.x before 8.0.410. The Info...	2023-05-10
CVE-2022-26483	🔶 medium	4.8	0.2	An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch...	2022-03-04

These CVEs affect the same products